spice-gtk - Debian Package Tracker

general

source: spice-gtk (main)
version: 0.39-1
maintainer: Debian QA Group (DMD)
arch: any
std-ver: 4.5.0
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

oldstable: 0.33-3.3+deb9u1
old-sec: 0.33-3.3+deb9u2
stable: 0.35-2
testing: 0.39-1
unstable: 0.39-1

versioned links

0.33-3.3+deb9u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
0.33-3.3+deb9u2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
0.35-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
0.39-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

gir1.2-spiceclientglib-2.0
gir1.2-spiceclientgtk-3.0
libspice-client-glib-2.0-8 (1 bugs: 0, 1, 0, 0)
libspice-client-glib-2.0-dev
libspice-client-gtk-3.0-5
libspice-client-gtk-3.0-dev
spice-client-glib-usb-acl-helper (1 bugs: 0, 1, 0, 0)
spice-client-gtk (3 bugs: 0, 2, 1, 0)

action needed

lintian reports 1 error and 1 warning high

Lintian reports 1 error and 1 warning about this package. You should make the package lintian clean getting rid of them.

Created: 2021-01-27 Last update: 2021-01-27 03:05

Fails to build during reproducibility testing normal

A package building reproducibly enables third parties to verify that the source matches the distributed binaries. It has been identified that this source package produced different results, failed to build or had other issues in a test environment. Please read about how to improve the situation!

Created: 2021-03-30 Last update: 2021-04-19 06:05

Depends on packages which need a new maintainer normal

The packages that spice-gtk depends on which need a new maintainer are:

usbredir (#911431)
- Build-Depends: libusbredirhost-dev
- Depends: libusbredirhost1 libusbredirparser1 libusbredirhost1 libusbredirparser1

Created: 2019-11-22 Last update: 2021-04-19 06:04

version in VCS is newer than in repository, is it time to upload? normal

vcswatch reports that this package seems to have a new changelog entry (version 0.39-2, distribution UNRELEASED) and new commits in its VCS. You should consider whether it's time to make an upload.

Here are the relevant commit messages:

commit 293102ccd717f491df3440f753012350accee3c7
Merge: 0001d02 410e08a
Author: Jelmer Vernooĳ <jelmer@debian.org>
Date:   Thu Feb 4 02:13:10 2021 +0000

    Merge branch 'lintian-fixes' into 'master'
    
    Fix some issues reported by lintian
    
    See merge request debian/spice-gtk!1

commit 410e08ab94eed73a988d53013a604bc1ac857f93
Author: Debian Janitor <janitor@jelmer.uk>
Date:   Wed Jan 13 20:19:43 2021 +0000

    Use secure URI in Homepage field.
    
    Changes-By: lintian-brush
    Fixes: lintian: homepage-field-uses-insecure-uri
    See-also: https://lintian.debian.org/tags/homepage-field-uses-insecure-uri.html

commit 9af568e4c6e7d075ed3d5223135a102fc77ce8cf
Author: Debian Janitor <janitor@jelmer.uk>
Date:   Wed Jan 13 20:18:24 2021 +0000

    debian/copyright: use spaces rather than tabs to start continuation lines.
    
    Changes-By: lintian-brush
    Fixes: lintian: tab-in-license-text
    See-also: https://lintian.debian.org/tags/tab-in-license-text.html

commit 0001d02036fd6ac89fe84092ad305c61bdf25f56
Author: Paul Gevers <elbrus@debian.org>
Date:   Fri Dec 4 18:24:04 2020 +0100

    Update d/changelog for release 0.39-1

commit 73ac6fbfb69c857441af5a031a603e8fdda88470
Author: Paul Gevers <elbrus@debian.org>
Date:   Thu Dec 3 15:21:19 2020 +0100

    Update d/changelog with changes so far

commit 09e2f59ad89ef45b10e08f2a0a90966d030be440
Author: Paul Gevers <elbrus@debian.org>
Date:   Thu Dec 3 15:37:44 2020 +0100

    Update Build-Depends in d/control

commit 144a19469c1c22dbf680540a4c3c00e30b93b7ba
Author: Paul Gevers <elbrus@debian.org>
Date:   Thu Dec 3 15:37:13 2020 +0100

    Update years in d/copyright

commit 3770f607877a6c11aa6f0c23dc394fdcea85c474
Author: Paul Gevers <elbrus@debian.org>
Date:   Thu Dec 3 15:24:02 2020 +0100

    Drop patch, applied upstream

commit 12fd181f4a5d89917572b2345e59b8fc4ae810ba
Author: Sebastien Bacher <seb128@ubuntu.com>
Date:   Thu Dec 3 15:19:51 2020 +0100

    don't Build-Depends on the gstreamer1.0-doc NBS binary
    
    (Closes: #970730)

commit 240fe4bdb43a2889957e4637350b725ac4b2d6c0
Merge: 9ef57cd cb01f3e
Author: Paul Gevers <elbrus@debian.org>
Date:   Thu Dec 3 15:15:15 2020 +0100

    Update upstream source from tag 'upstream/0.39'
    
    Update to upstream version '0.39'
    with Debian dir e6b56a10157c11b417d684c63a3fc1af4c69e60e

commit cb01f3e72fe8157afbf7069d09089504089c1f58
Author: Paul Gevers <elbrus@debian.org>
Date:   Thu Dec 3 15:15:13 2020 +0100

    New upstream version 0.39

commit 9ef57cd64a60aed2b7fda0e38b3fed0f8f9743e2
Author: Paul Gevers <elbrus@debian.org>
Date:   Thu Dec 3 15:14:06 2020 +0100

    Set QA group as maintainer

Created: 2020-12-03 Last update: 2021-04-16 13:37

O: This package has been orphaned and needs a maintainer. normal

This package has been orphaned. This means that it does not have a real maintainer at the moment. Please consider adopting this package if you are interested in it. Please see bug number #911428 for more information.

Created: 2018-10-20 Last update: 2020-05-26 17:06

2 low-priority security issues in buster low

There are 2 open security issues in buster.

2 issues left for the package maintainer to handle:

CVE-2018-10893: (needs triaging) Multiple integer overflow and buffer overflow issues were discovered in spice-client's handling of LZ compressed frames. A malicious server could cause the client to crash or, potentially, execute arbitrary code.
CVE-2020-14355: (needs triaging) Multiple buffer overflow vulnerabilities were found in the QUIC image decoding process of the SPICE remote display system, before spice-0.14.2-1. Both the SPICE client (spice-gtk) and server are affected by these flaws. These flaws allow a malicious client or server to send specially crafted messages that, when processed by the QUIC image compression algorithm, result in a process crash or potential code execution.

You can find information about how to handle these issues in the security team's documentation.

Created: 2021-02-19 Last update: 2021-03-21 19:04

Build log checks report 1 warning low

Build log checks report 1 warning

Created: 2020-12-05 Last update: 2020-12-05 05:26

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.5.1 instead of 4.5.0).

Created: 2020-11-17 Last update: 2020-12-05 01:06

testing migrations

This package will soon be part of the auto-openssl transition. You might want to ensure that your package is ready for it. You can probably find supplementary information in the debian-release archives or in the corresponding release.debian.org bug.

news

[rss feed]

[2020-12-10] spice-gtk 0.39-1 MIGRATED to testing (Debian testing watch)
[2020-12-04] Accepted spice-gtk 0.39-1 (source) into unstable (Paul Gevers)
[2020-11-01] Accepted spice-gtk 0.33-3.3+deb9u2 (source amd64) into oldstable (Utkarsh Gupta)
[2020-05-01] spice-gtk 0.38-2 MIGRATED to testing (Debian testing watch)
[2020-04-25] Accepted spice-gtk 0.38-2 (source) into unstable (Laurent Bigonville)
[2020-04-25] Accepted spice-gtk 0.38-1 (source) into unstable (Laurent Bigonville)
[2020-03-23] spice-gtk 0.37-2 MIGRATED to testing (Debian testing watch)
[2020-03-17] Accepted spice-gtk 0.37-2 (source) into unstable (Laurent Bigonville)
[2019-08-08] spice-gtk 0.37-1 MIGRATED to testing (Debian testing watch)
[2019-08-02] Accepted spice-gtk 0.37-1 (source) into unstable (Laurent Bigonville)
[2018-10-27] Accepted spice-gtk 0.33-3.3+deb9u1 (source) into proposed-updates->stable-new, proposed-updates (Salvatore Bonaccorso)
[2018-09-13] spice-gtk 0.35-2 MIGRATED to testing (Debian testing watch)
[2018-09-08] Accepted spice-gtk 0.35-2 (source amd64) into unstable (Laurent Bigonville)
[2018-09-05] Accepted spice-gtk 0.35-1 (source amd64) into unstable (Laurent Bigonville)
[2018-09-05] spice-gtk 0.34-1.2 MIGRATED to testing (Debian testing watch)
[2018-08-31] Accepted spice-gtk 0.25-1+deb8u1 (source amd64) into oldstable (Mike Gabriel)
[2018-08-30] Accepted spice-gtk 0.34-1.2 (source amd64) into unstable (Jeremy Bicha) (signed by: Laurent Bigonville)
[2017-09-05] spice-gtk 0.34-1.1 MIGRATED to testing (Debian testing watch)
[2017-08-31] Accepted spice-gtk 0.34-1.1 (source amd64) into unstable (Laurent Bigonville)
[2017-08-28] Accepted spice-gtk 0.34-1 (source amd64) into unstable, unstable (Liang Guo)
[2017-01-25] spice-gtk 0.33-3.3 MIGRATED to testing (Debian testing watch)
[2017-01-14] Accepted spice-gtk 0.33-3.3 (source) into unstable (intrigeri)
[2016-12-30] Accepted spice-gtk 0.33-3.2 (source) into unstable (intrigeri)
[2016-12-15] Accepted spice-gtk 0.33-3.1 (source) into unstable (Andrey Rahmatullin)
[2016-10-30] spice-gtk 0.33-3 MIGRATED to testing (Debian testing watch)
[2016-10-25] Accepted spice-gtk 0.33-3 (source amd64) into unstable (Liang Guo)
[2016-10-24] Accepted spice-gtk 0.33-2 (source amd64) into unstable (Liang Guo)
[2016-10-19] spice-gtk 0.33-1 MIGRATED to testing (Debian testing watch)
[2016-10-13] Accepted spice-gtk 0.33-1 (source amd64) into unstable (Liang Guo)
[2016-08-03] spice-gtk 0.32-1 MIGRATED to testing (Debian testing watch)

bugs [bug history graph]

all: 5
RC: 0
I&N: 4
M&W: 1
F&P: 0
patch: 0

links

homepage
lintian (1, 1)
buildd: logs, checks, clang, reproducibility, cross
popcon
browse source code
edit tags
other distros
security tracker
l10n (-, 69)

ubuntu

[Information about Ubuntu for Debian Developers]

version: 0.39-1
3 bugs